Overview

overview

7

Static

static

3

691dc97d39...18.exe

windows7-x64

7

691dc97d39...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/rav.dll

windows7-x64

3

$PLUGINSDIR/rav.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    691dc97d39b4145d8ed218e52dbf78e5_JaffaCakes118

  • Size

    572KB

  • MD5

    691dc97d39b4145d8ed218e52dbf78e5

  • SHA1

    39f762f165a62c879b63a5b6aee0e577c5e26b16

  • SHA256

    102323b03ad89fb178f51c2d62ad4ef466ebb07057f0ebfbdb45d0326109e7a4

  • SHA512

    3f0bd5711887726bc97c22434deed2a70f639457eb35b425327c794fecfb3289b95d4070ca13c4092e8321263338fc1e93a3e13880f15c56be3f509d5bc19bd6

  • SSDEEP

    12288:Jb5K6nAQhZqxFooxGZofD8v2zNScTeSmAYMi4oBbgGdHf6g:J06nAGo46DbNdTeQYMi4oBbfJfD

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 691dc97d39b4145d8ed218e52dbf78e5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/rav.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • insHv26.bcdcabfebed